How to know users accessing mail outside of Itune

New Contributor

Hello team, 

 

I have a query that is scatching my head... I wanna know how I can find users outside of Intune, I wanna block them and force them within Intune... 

 

Regards

 

Jamalie.

4 Replies

Hi @Jamalie

 

Many ways you can do this, first one came to my mind Navigate to Azure AD - Devices - All Devices - Export the devices to Excel - Filter results by Not Compliant and none for MDM. This will give you the idea of devices not managed by Intune. Then you can apply a Conditional Access to allow only Compliant Devices to access your tenant. You need to hand hold the users to register their devices depend if using hybrid or Azure AD registered. 

Moe

 

https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access...

Thank you for the feedback, we don't have the conditional access license ,what would be the alternative way.

I would go through the report you going to export and disable the access for the devices that not Compliant /not managed by intune.Check the activity column to have an idea of the stale devices. Without Conditional Access you need to keep doing this manually. CA is an essential security tool for transitioning to the cloud so you may need to consider it before moving workload to the cloud.

Moe

 

https://learn.microsoft.com/en-us/azure/active-directory/devices/manage-stale-devices

Thank you for the feedback, for the manual blocking... I guess I could put together a script to iterate throughout the list...